Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: BDvS9DxsQmtShgdTks1n5CG6oUfpRFyIPvs3XNgxCvQ=
Subject key identifier: 8C:28:78:E4:7C:12:47:FE:AE:2D:67:16:80:89:D7:43:5F:FA:6A:8D
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019D2A3BA4BDDE18F25B1F0161C58AF4AEEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 1626
Signing time: Thu 26 Mar 2026 13:00:45 +0000
Manifest this update: Thu 26 Mar 2026 13:00:45 +0000
Manifest next update: Fri 27 Mar 2026 13:00:45 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: diSAT1KvjQRUveYBQAlP/4sz64ukJCmU1/i8AOFzeIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:a4:bd:de:18:f2:5b:1f:01:61:c5:8a:f4:ae:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Mar 26 13:00:45 2026 GMT
Not After : Mar 27 13:00:45 2026 GMT
Subject: CN=8c2878e47c1247feae2d67168089d7435ffa6a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:73:2b:e0:3b:62:e4:56:92:29:16:f6:9f:3e:
72:f9:f8:f3:65:1a:39:ba:aa:98:8f:1a:86:3f:62:
f2:28:18:d0:24:40:10:b2:3b:c5:19:75:80:5f:3c:
98:36:05:f6:24:cc:19:01:5a:2d:6e:eb:6e:41:8c:
51:ce:d1:46:c8:9d:07:49:ee:d6:d3:69:f8:6e:30:
2a:f8:6e:72:a6:79:95:49:4e:f9:6e:ac:04:34:41:
33:f6:f5:f6:fa:e1:8a:a7:2b:8e:32:f7:a4:7a:fc:
34:10:05:92:51:fb:0b:d3:68:e5:ae:8a:c7:41:b2:
64:15:1f:8f:ff:7f:d4:15:14:bc:52:97:c1:4d:4a:
9c:43:7c:4b:cc:bf:e2:57:4f:3a:0e:39:e2:8f:53:
b8:fc:de:e2:64:8a:91:76:c2:1a:63:e4:df:19:ed:
f4:e4:b9:06:f7:64:1c:e2:00:52:46:a7:d7:fa:01:
46:aa:f6:f9:cd:8f:93:65:70:53:12:6e:68:38:33:
e2:3d:3a:ef:65:3c:b3:73:c7:93:85:44:c8:a4:66:
09:d2:3c:5e:78:e5:54:84:31:e2:26:e8:14:e1:fb:
c8:7d:f4:42:ae:03:ee:bc:aa:18:bf:7f:90:dc:58:
d2:04:57:b5:e2:6e:dd:91:0d:f5:1e:cb:a9:52:cf:
ab:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:28:78:E4:7C:12:47:FE:AE:2D:67:16:80:89:D7:43:5F:FA:6A:8D
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:2f:aa:91:8b:5d:9e:f7:0d:7f:17:ce:df:9c:46:4c:50:8a:
26:07:99:16:1a:a9:2a:20:0b:4f:22:dd:7e:08:f8:98:36:bb:
d7:83:5e:ed:9c:f8:95:fe:5e:0a:b9:ed:e1:f6:cb:bc:3e:96:
ab:e6:c9:16:1a:72:f0:d3:a1:64:0a:d8:6f:0a:18:ab:4d:ff:
43:21:ad:4e:3f:8e:6b:18:1f:df:50:53:bd:f0:42:48:68:9b:
3c:57:80:01:43:c5:4d:56:1a:b9:51:82:b8:68:4f:a2:9f:66:
ed:52:58:2b:68:db:30:21:e2:c4:4e:66:42:45:74:0c:7f:8c:
83:00:25:ff:a4:4a:e4:1e:e1:f9:0f:d4:fa:e0:33:ad:13:c6:
c4:db:88:4c:93:5f:f5:e4:b2:4e:4f:dd:36:9f:8a:f3:cc:c5:
58:6c:93:a8:33:2d:56:d6:0c:38:24:b0:a5:95:34:2f:1f:97:
82:8b:3b:c1:00:9b:c2:33:15:cf:55:75:f5:5e:dc:0b:cd:ea:
69:aa:2f:b7:ea:06:2c:95:be:7a:e2:18:97:61:b5:8e:6c:ec:
5e:57:7b:2b:b1:bd:df:dc:1c:8f:ab:8a:7a:ca:27:88:5c:97:
02:3a:bf:9e:70:52:eb:33:f7:ec:f8:ba:d8:42:d0:75:84:1b:
0c:2d:e7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:34:29 2026 by rpki-client